Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/AKGEqwCODNr6R8uBMUAS0YjUu3o.roa
File: AKGEqwCODNr6R8uBMUAS0YjUu3o.roa (raw, json)
Hash identifier: Js//iOJSmhCAR2qmfhYzbnanZ7iuPtSH0+cm0t/T884=
Subject key identifier: 00:A1:84:AB:00:8E:0C:DA:FA:47:CB:81:31:40:12:D1:88:D4:BB:7A
Certificate issuer: /CN=a0947039d9f080a427f7525c5d066f6cf62134f3
Certificate serial: 0189E65DDE80976090CFFE957F71494A02CB
Authority key identifier: A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/AKGEqwCODNr6R8uBMUAS0YjUu3o.roa
Signing time: Fri 11 Aug 2023 20:50:58 +0000
ROA not before: Fri 11 Aug 2023 20:50:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213099
IP address blocks: 94.124.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e6:5d:de:80:97:60:90:cf:fe:95:7f:71:49:4a:02:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0947039d9f080a427f7525c5d066f6cf62134f3
Validity
Not Before: Aug 11 20:50:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00a184ab008e0cdafa47cb81314012d188d4bb7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e7:ef:6d:c0:5e:86:b4:10:e9:a8:af:2c:cd:
1c:75:4a:7a:ce:16:b6:5f:07:90:9c:9c:47:64:90:
57:19:92:1d:f5:2f:2b:03:3e:84:8f:33:33:78:23:
50:82:c2:82:7c:43:b2:34:5a:71:ad:9b:77:7d:86:
70:30:85:03:2a:7c:32:05:5a:71:71:7b:4f:5b:be:
98:94:3e:7b:57:0d:39:b3:2b:d4:77:57:de:4f:ac:
42:af:f6:f9:5b:57:46:46:7d:13:2e:ad:f8:a2:ca:
71:2d:4c:c8:aa:14:6e:73:be:0c:65:e6:9e:7f:6e:
f6:f9:cd:9f:d7:13:4c:de:bc:58:fe:8e:08:25:19:
04:a5:da:7f:c1:59:8a:48:cc:03:82:f7:95:dd:a8:
20:8a:b4:52:e4:89:24:66:39:f6:30:28:e8:ed:32:
d2:93:7c:2a:d9:13:a6:99:63:be:2a:08:2e:33:13:
b2:2c:e4:74:cd:3c:80:5a:42:cb:a2:e5:3d:9a:63:
d7:40:fb:29:49:a6:cf:92:29:17:39:f0:61:88:4b:
ab:62:45:f8:f9:cf:37:ef:1c:b7:86:bb:cb:31:71:
c7:32:7f:bf:e2:58:d2:00:2e:cb:e7:c7:95:e0:89:
b8:73:8c:4f:5b:95:5a:ff:f9:61:31:e4:9b:9f:54:
3a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A1:84:AB:00:8E:0C:DA:FA:47:CB:81:31:40:12:D1:88:D4:BB:7A
X509v3 Authority Key Identifier:
keyid:A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/AKGEqwCODNr6R8uBMUAS0YjUu3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.113.0/24
Signature Algorithm: sha256WithRSAEncryption
35:06:7b:5a:5a:f6:3e:f8:fa:b3:eb:57:79:6a:82:3f:cf:45:
ed:fd:91:b5:42:6f:f6:fe:a8:18:4a:b6:1d:5d:2b:59:a1:80:
72:24:3b:00:48:40:77:e6:2f:07:a9:70:89:25:9a:f0:8f:f0:
eb:39:4d:75:4a:a1:66:be:8a:23:90:3f:dd:52:7e:30:2c:b4:
08:c0:fb:74:fc:d4:90:ed:3d:5b:48:2c:d2:67:e3:53:c7:4b:
35:00:fb:30:21:24:0e:4e:8e:9f:19:85:f1:a3:a5:4a:45:64:
bb:00:96:9c:4a:65:34:35:5e:e2:e2:f1:21:71:87:6e:14:55:
bd:2c:41:53:4b:73:da:6f:75:b6:0e:cf:5c:95:26:50:f0:57:
54:1c:82:c9:a5:af:97:b1:c6:01:92:7f:3b:56:d8:e5:2e:54:
d3:0b:e7:e1:f5:b8:ef:53:b7:24:4f:d2:83:e8:47:31:12:40:
84:b5:6d:62:59:53:10:cd:0a:97:80:59:15:0a:d3:33:05:bd:
fb:b9:15:79:5a:35:eb:e2:53:e4:18:cd:4a:aa:f2:c9:a4:c9:
5e:7d:fe:02:21:30:4e:77:91:87:32:1e:4d:78:ea:9c:c2:e3:
bf:13:bd:9c:ed:74:d9:56:a6:13:f9:9c:7a:35:b2:9a:76:71:
02:7a:a2:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnmXd6Al2CQz/6Vf3FJSgLLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOTQ3MDM5ZDlmMDgwYTQyN2Y3NTI1YzVkMDY2ZjZjZjYy
MTM0ZjMwHhcNMjMwODExMjA1MDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGExODRhYjAwOGUwY2RhZmE0N2NiODEzMTQwMTJkMTg4ZDRiYjdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmOfvbcBehrQQ6aivLM0cdUp6zha2
XweQnJxHZJBXGZId9S8rAz6EjzMzeCNQgsKCfEOyNFpxrZt3fYZwMIUDKnwyBVpx
cXtPW76YlD57Vw05syvUd1feT6xCr/b5W1dGRn0TLq34ospxLUzIqhRuc74MZeae
f272+c2f1xNM3rxY/o4IJRkEpdp/wVmKSMwDgveV3aggirRS5IkkZjn2MCjo7TLS
k3wq2ROmmWO+KgguMxOyLOR0zTyAWkLLouU9mmPXQPspSabPkikXOfBhiEurYkX4
+c837xy3hrvLMXHHMn+/4ljSAC7L58eV4Im4c4xPW5Va//lhMeSbn1Q65QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAChhKsAjgza+kfLgTFAEtGI1Lt6MB8GA1UdIwQY
MBaAFKCUcDnZ8ICkJ/dSXF0Gb2z2ITTzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0pSd09kbndnS1FuOTFKY1hRWnZiUFloTlBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9lM2I5MjEtYTc2Yi00MWYwLWIyNDQt
YzhiM2FjMGJlZmNiLzEvQUtHRXF3Q09ETnI2Ujh1Qk1VQVMwWWpVdTNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS9lM2I5MjEtYTc2Yi00MWYwLWIyNDQtYzhiM2FjMGJlZmNi
LzEvb0pSd09kbndnS1FuOTFKY1hRWnZiUFloTlBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXnxxMA0G
CSqGSIb3DQEBCwUAA4IBAQA1BntaWvY++Pqz61d5aoI/z0Xt/ZG1Qm/2/qgYSrYd
XStZoYByJDsASEB35i8HqXCJJZrwj/DrOU11SqFmvoojkD/dUn4wLLQIwPt0/NSQ
7T1bSCzSZ+NTx0s1APswISQOTo6fGYXxo6VKRWS7AJacSmU0NV7i4vEhcYduFFW9
LEFTS3Pab3W2Ds9clSZQ8FdUHILJpa+XscYBkn87VtjlLlTTC+fh9bjvU7ckT9KD
6EcxEkCEtW1iWVMQzQqXgFkVCtMzBb37uRV5WjXr4lPkGM1KqvLJpMleff4CITBO
d5GHMh5NeOqcwuO/E72c7XTZVqYT+Zx6NbKadnECeqJl
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:14 2025 by rpki-client